Automate On-Premise AD Account Creation with MS Flow

Solution Design

I was recently asked to work on Automating the on-premise Active Directory Account creation. The idea was simple – Hiring manager fills up a form with the required details about the new joinee and submits and then the account should get created in On-premise AD and eventually be synced with Azure AD with required licenses assigned. The obvious expectation was to use available tools only which come as part of Office 365 E3 license suite. Implicit Requirements Even though the stated requirements seem quite straight forward, there were a few implicit ones which had to be taken care of: The […]

Continue Reading

Access On-Premise Extension Attributes from Azure AD in MS Flow

Complete Flow

I recently came across a requirement where I needed to read SamAccountName and some ExtensionAttributes from Azure AD which are synced with On-Premise AD. I thought since all the On-premise attributes are being synced using Azure AD Connect, it should be easy enough to read those values from Azure AD using PowerShell or Microsoft Graph APIs. Getting Started Before I jumped into the solution, I wanted to be sure that Extension Attributes are indeed being synced. So, I looked into the connector properties and it was clear at that at least some of the Extension Attributes are being synced. Let […]

Continue Reading

Easily Switch Between Multiple Accounts in Office 365

All Propfiles

More often than not, in Office 365, IT workers find themselves using multiple accounts. Like one account for normal user access, another with Tenant Admin permissions and so on. Even though, the interface for switching logged in accounts in office 365  has become better now, than it used to be few months ago, it still leaves a lot to be desired. What’s the Problem Let’s take a look at what we are talking about. Suppose you have 2 different accounts, you use to access Office 365 – One a normal user account and another a tenant admin account and you […]

Continue Reading

Automate License Assignments in Office 365

Office 365 Licenses

License assignments has been one of the core governance concerns in Office 365 . With ever growing list of Office 365 Services and mix of license types (like E1, E3, E5 and a combination of those), this has created another world of processes (and PowerShell scripts) to keep up. So, what can we do to help reduce the amount of efforts spent on this? Yes, you got it right, Automate! Why bother about it? Before we jump into the solution, let’s spend some time on understanding “why” it is required in the first place. In most medium to large size organizations, […]

Continue Reading

Implement Custom Alert Policies in Office 365

Alert Policy

Alert Policies are a bit of hidden gems in Office 365. There are a wide list of activities which can be tracked using these alert policies and a notification can be received when such activities/events occur. As per the official definition, we can use alert policies to track user and admin activities, malware threats, or data loss incidents in Office 365. After choosing the activity you want to be alerted on, refine the policy by adding conditions, deciding when to trigger the alert, and who should receive notifications. Alert Policies Alert Policies are part of Office 365 Security & Compliance […]

Continue Reading

Office 365 Management Activity API to Automate SharePoint Governance

API Permissions

In one of my previous articles, I talked about How to use Azure Text Analytics Service to Automatically Tag SharePoint Documents. One of the alternatives for implementation I pointed out was using Office 365 Management Activity API to identify when a document gets uploaded and trigger the metadata tagging. In this article, I am going to go in a bit more detail about how that can be achieved. However, by the end of this article, it should be fairly clear to you that similar solution can also implement various different scenarios to automate SharePoint governance. Introduction Summarizing the introduction from […]

Continue Reading

Sync Files on Demand with OneDrive Client

In a complete Office 365 implementation, every user gets a personal web space called OneDrive Site. This is a place where they are supposed to store files which are not supposed to be shared or ready to be shared with larger audience. OneDrive for Business sites combined with OneDrive client provides great way to ensure users are truly mobile. It allows them to access their files anywhere from any device, of course, depending on organizational policies. Organizations have love-hate relationship with OneDrive – Some have accepted it to the core whereas others see it as a potential security hazard, which […]

Continue Reading

How to Call SharePoint REST WebService from Microsoft Flow

Microsoft Flow is getting better and better with each passing day. It now has thousands of templates to get you started quickly and provides connectors for hundreds of other services. Flow can be invoked from across various external applications as well, but I guess, the most immediate users would come from SharePoint world 🙂 I wrote an article earlier about how Microsoft Flow can be used to Enable Incoming Mails in SharePoint Online. In this article, I am going to explain how to connect with SharePoint Online, extract some data using REST Services and send it for further processing. Getting […]

Continue Reading

Migrate Files Shares to Microsoft Cloud

File Share Featured

File shares have been a beloved way to store and share documents around various groups for years. Even though, many organizations moved to collaborative solutions like SharePoint years ago, File Shares didn’t lose their charm. Because of the ease of usage and historical knowhow, it continued to grow both in size and usage over years. I know many organizations who store say 5 terabytes of data in SharePoint, still have four times more data in File Shares. But things are not all rosy with File Shares. Why Move out of File Shares Let’s a take quick look at why we […]

Continue Reading

External/Guest Access in Microsoft Teams

Microsoft recently announced to start rolling out a much awaited feature in Microsoft Teams – Support for consumer email account as Guests or External Users. As per Microsoft official message “Users will have the ability to add anyone with a business or consumer email account (such as Outlook.com) as a guest, enabling them to participate in Teams with full access to team chats, meetings and files. Guests with email accounts such as Gmail.com or others that do not yet have a Microsoft account associated to their email will be directed to create a Microsoft account for free, as this is required […]

Continue Reading